From: Jan Kara <jack@suse.cz>
To: Zhang Yi <yi.zhang@huawei.com>
Cc: Jan Kara <jack@suse.cz>,
linux-ext4@vger.kernel.org, tytso@mit.edu,
adilger.kernel@dilger.ca, yukuai3@huawei.com
Subject: Re: [PATCH v2] ext4: fix underflow in ext4_max_bitmap_size()
Date: Mon, 28 Feb 2022 10:03:59 +0100 [thread overview]
Message-ID: <20220228090359.dcqajobuol3ripur@quack3.lan> (raw)
In-Reply-To: <3335eb5d-76c0-0b01-3dca-b2e2ccdf91c0@huawei.com>
On Sat 26-02-22 10:30:31, Zhang Yi wrote:
> On 2022/2/25 20:38, Jan Kara wrote:
> > On Fri 25-02-22 18:28:37, Zhang Yi wrote:
> >> + /* Compute how many metadata blocks are needed */
> >> + meta_blocks = 1;
> >> + meta_blocks += 1 + ppb;
> >> + meta_blocks += 1 + ppb + ppb * ppb;
> >> + /* Does block tree limit file size? */
> >> + if (res + meta_blocks <= upper_limit)
> >> + goto check_lfs;
> >> +
> >> + res = upper_limit;
> >> + /* How many metadata blocks are needed for addressing upper_limit? */
> >> + upper_limit -= EXT4_NDIR_BLOCKS;
> >> + /* indirect blocks */
> >> + meta_blocks = 1;
> >> + upper_limit -= ppb;
> >> + /* double indirect blocks */
> >> + if (upper_limit < ppb * ppb) {
> >> + meta_blocks += 1 + DIV_ROUND_UP_ULL(upper_limit, ppb);
> >> + res -= meta_blocks;
> >> + goto check_lfs;
> >> + }
> >> + meta_blocks += 1 + ppb;
> >> + upper_limit -= ppb * ppb;
> >> + /* tripple indirect blocks for the rest */
> >> + meta_blocks += 1 + DIV_ROUND_UP_ULL(upper_limit, ppb) +
> >> + DIV_ROUND_UP_ULL(upper_limit, ppb*ppb);
> >> + res -= meta_blocks;
> >> +check_lfs:
> >> res <<= bits;
> >
> > Cannot this overflow loff_t again? I mean if upper_limit == (1 << 48) - 1
> > and we have 64k blocksize, 'res' will be larger than (1 << 47) and thus
> > res << 16 will be greater than 1 << 63 => negative... Am I missing
> > something?
> >
>
> If upper_limit==(1 << 48) - 1, we could address the whole data blocks, the 'res'
> is equal to EXT4_NDIR_BLOCKS + ppb + ppb*ppb + ((long long)ppb)*ppb*ppb, it's
> smaller than (1 << 43) - 1, so res << 16 is still smaller 1 << 59, so it cannot
> overflow loff_t again.
Indeed, sorry for confusion. Not sure where I did mistake in my math
previously.
Honza
--
Jan Kara <jack@suse.com>
SUSE Labs, CR
prev parent reply other threads:[~2022-02-28 9:04 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-02-25 10:28 [PATCH v2] ext4: fix underflow in ext4_max_bitmap_size() Zhang Yi
2022-02-25 12:38 ` Jan Kara
2022-02-26 2:30 ` Zhang Yi
2022-02-28 9:03 ` Jan Kara [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20220228090359.dcqajobuol3ripur@quack3.lan \
--to=jack@suse.cz \
--cc=adilger.kernel@dilger.ca \
--cc=linux-ext4@vger.kernel.org \
--cc=tytso@mit.edu \
--cc=yi.zhang@huawei.com \
--cc=yukuai3@huawei.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox